Cyber risk
SEC cyber rules risk creating web of confusion and costs
Proposals would require breach notifications, public disclosures and annual cyber assessments

Hacked off: banks demand answers after Ion cyber attack
Clients left in the dark about ransomware attack that disrupted futures trading last month

CFTC chair gloomy over crypto legislation prospects
FIA Boca 2023: Behnam also asks Congress to grant more powers to regulate third-party tech providers

Top 10 operational risks: Focus on cyber risk
All firms fear data breach; smaller banks also concerned over IT disruption
One-fifth of CME clearing members hit by Ion hack
Advisory committee heard CFTC believed it could “play a more direct role” in cyber security practices
Top 10 operational risks for 2023
The biggest op risks for the year ahead, as chosen by senior industry practitioners
Top 10 op risks 2023: regulatory risk jumps sharply
Cyber and third-party risks also rise, along with concerns around data management and execution errors
Ion in the fire: three banks call in lawyers after hack
Banks are examining service-level agreements for possible breaches
Ion: after the hack, the clean-up
Some clients now using Ion systems again, but synchronising data with CCPs could take days
Ion cyber outage continues as banks use workarounds
ABN Amro, Macquarie, RBC among firms hit; ransom deadline tomorrow, but service may be down for days
Financial firms rethink after cyber insurance premium spike
Brokers say there are signs pressure is easing, but quantum hacking threat could transform market
Op risk data: SEC skewers Goldman for specious ESG claims
Also: FTX hacked; Aussie banks schooled for credit insurance mis-sales; more on Glencore. Data by ORX News
Cyber incident reporting: convergence is key
FSB working group chair advocates common reporting framework and taxonomy
Op risk data: Banks slapped for lax WhatsApp oversight
Also: Wintermute suffers crypto hack; CS settles over Archegos and Greensill. Data by ORX News
Banks may spend ‘billions’ to stop quantum hacking threat
Quantum-proof algo standards nearing completion, but enhanced cryptography won’t come cheap
Rethinking risk and operational resilience post‑Covid‑19
In a Risk.net panel session, convened in collaboration with Fusion Risk Management, experts discussed five themes on re-evaluating existing operational resilience strategies
OCC sees sharp drop in ransomware attacks on US banks
OpRisk North America: drop-off confounds expectations and mystifies regulators
SEC cyber rule could trigger more attacks, experts warn
Mandatory disclosure of cyber risks and attacks could help hackers
Aon chief executive Greg Case: resilience protects, but it also promotes growth
As chief executive of a company whose raison d’être is helping firms make better decisions, Greg Case has wide-ranging knowledge and a nuanced perspective to share on resilience and its importance in volatile times
Banks tout CCAR-style stress tests for emergent risks
Extreme-but-plausible scenario planning is being applied to geopolitical events such as Ukraine conflict
Top 10 operational risks for 2022
The biggest op risks for the year ahead, as chosen by senior industry practitioners
US watchdog urges banks to uphold cross-border trust
Federal regulators assess financial spillover from Russian offensive as volatility surges and sanctions bite
Europe’s banks brace for Russia-backed cyber retaliation
Beefed-up sanctions on Russia’s largest banks spark IT security alert; 100s of computers brought down in Ukraine
US banks harbour concerns over agencies’ cyber risk rule
Lack of reporting template means “people can give the least amount of data possible”, warns CISO